When you want to consume external data in SharePoint, such as data from your other business applications, you can use Business Connectivity Services (BCS) together with Secure Store Service. The external data source that you can connect to is called a Secure Store Target Application. BCS makes it possible for you to set up a connection to the Target Application, and the Secure Store enables you to manage the credentials required by the external data source.
Before proceeding, You have created and configured the Secure store service application and generated the master key from SharePoint 2013/2016 Central Administration site, isn’t it? If not, Refer to:
- How to Configure Secure Store Service Application in SharePoint 2016 – Step by Step or
- Create SharePoint 2013 Secure Store Service Application using PowerShell
Now you are all set to create new Target Applications and use them in SharePoint. Here you go!
How to Create New Target Application ID?
Here are the steps to add a new Target Application ID in SharePoint 2016 Secure store Service:
- Go to SharePoint Central Administration site >> Click on “Manage Service Applications”
- Locate and pick your Secure store service application
- In the Ribbon, Under the Edit tab click on New button
- Enter the Target Application ID (Make sure the ID is unique – and you can’t change it later), Display Name, Contact E-Mail. Choose the application type – Group: Maps group of users to a single set of stored credentials Individual: Maps a single user to a single set of stored credentials. Click Next.
- The next window gives you the ability to Add/Change credential fields associated with the external data source. In my case, I left it with Windows User Name and Windows Password fields as they are sufficient to connect with the SQL Server database using windows credentials. Click on Next. If you want to use SQL authentication, Select “User Name” and “Password” in the Field type dropdown
- Enter the name(s) of the users that will administer the target application and Group who will use the target application and click OK
Now we have successfully created a target application.
Set up Credentials for New Target Application ID:
The next step is to set the credentials for the target application ID.
- Click on Context menu of newly created Target Application Id and choose Set Credential
- Enter the User Name and Password & Confirm Password which will be used to connect to the target data source on behalf of authorized users and click on OK to complete the creation of a secure store target application ID. Make sure this access account (In my case its: Crescent\DBAccess) have proper rights on the external database for the operation such as Read/Write.
Now All users of the given group can use the Application ID to connect with external data sources with the application ID generated! Once the target application is created in Secure store service, you can associate it with any application to interact with the external database or application model, such as SharePoint Designer, Excel, etc.